Re: [patch] exec-shield-nx-2.6.9-A1

From: Albert Cahalan
Date: Sun Oct 17 2004 - 15:23:06 EST

Next message: Thomas Weber: "Re: Fw: signed kernel modules?"
Previous message: Martin Schlemmer [c]: "Re: 2.6.9-rc4-mm1: initramfs build fix [u]"
In reply to: Sami Farin: "Re: [patch] exec-shield-nx-2.6.9-A1"
Next in thread: Ingo Molnar: "Re: [patch] exec-shield-nx-2.6.9-A1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

You have some bits in this patch that don't belong.
They aren't even conditional on a config option or
sysctl value.

First, you change the permission on the /proc/*/maps file.
Normally a remote attacker is unable to read this anyway,
and a local setuid attack has time to try until success.
Changing the permission might be a good idea, mostly
because it exposes filenames, but it should be a separate
patch.

Second, you restrict wchan. Oddly, you don't allow for
the target task's euid to play a role, and you chose the
CAP_SYS_NICE bit instead of some other bit. Huh? One might
guess from CAP_SYS_NICE that the feature has now become
hopelessly slow. Same as with the maps file, this should
be a separate patch.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Thomas Weber: "Re: Fw: signed kernel modules?"
Previous message: Martin Schlemmer [c]: "Re: 2.6.9-rc4-mm1: initramfs build fix [u]"
In reply to: Sami Farin: "Re: [patch] exec-shield-nx-2.6.9-A1"
Next in thread: Ingo Molnar: "Re: [patch] exec-shield-nx-2.6.9-A1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]